SlideShare a Scribd company logo

Port forward

Download as PPTX, PDF
L
lyndyv

Port forwarding allows remote hosts on the internet to connect to servers on a local network by forwarding incoming connection requests on specific ports to IP addresses and ports of servers on the local network. When a request comes in on a forwarded port, the router checks for a matching forwarding rule and sends the request to the specified internal IP address and port if there is a match, otherwise it drops the request. Port triggers open ports temporarily based on outgoing traffic to allow return connections for things like mail identity information or online gaming.

1 of 4
Downloaded 52 times
1
2
3
4
 Port forwarding allows remote hosts from the Internet or outside network to connect to a server on the local network (inside network) ◦ The default firewall behaviour is to drop any connections starting from the outside  Remote hosts typically use protocols such as http, https, ftp, ssh
 A remote host sends a request to the public global IP address of the inside server and the port number of the service required (usually the registered port no of the destination service e.g. port 80 for http) ◦ If the router is using PAT this is the outside interface address  The wireless router uses PAT ◦ If the router is using static NAT this is mapped one-to-one address  The request is routed to the outside interface of the router  The router checks for a port forwarding rule that matches the protocol and the destination port of the request ◦ If a match to a rule exists the request is forwarded to the local IP address and the port number configured in the port forward rule  Only one inside server can use the global IP/port number mapping  E.g If there are 2 inside http servers one can use port 80 and one can use port 90 ◦ If a match to a rule does not exist the request is dropped
 The remote host on the outside network must use the public global IP address to create the connection  The port number used in the port forward rule is reserved for only 1 inside IP address ◦ A port number can’t be used to forward requests to a second server. To do this, select a different unused port no and create a second port forwarding rule  Some applications; multimedia and torrents required several ports open for connections. ◦ Typically 1 or 2 ports are required for the control channels that setup and close the connection and monitor the connection. ◦ Extra ports may be required for the data stream, another for video, another for voice and another for chat ◦ Research the port nos required ◦ Use a port range in the forwarding rule
 A port trigger is used to open a port temporarily for a particular inside host only ◦ The port trigger allows new connections from the outside network to an inside host that initiated the data flow ◦ E.g. Port 25 is defined as a trigger and 113 as the port ◦ A local host checks mail and triggers port 25. The port trigger allows a back connection on port 113 (Identity information for mail) to the originating host ◦ The trigger times out and new connections to 113 are dropped  The wireless router monitors outgoing traffic for the port numbers specified in the trigger ◦ When a match is made the IP address of the sending host (local address) is saved. ◦ When the return traffic arrives back at the router it is forwarded to the original sending host.  Port triggers might be used in online gaming

More Related Content

PPTX
Port forwarding
Ronak Mehta
 
PPTX
Firewall Design and Implementation
ajeet singh
 
PPTX
Web essentials clients, servers and communication – the internet – basic inte...
smitha273566
 
PPT
Congetion Control.pptx
Naveen Dubey
 
PDF
QOS (Quality of Services) - Computer Networks
IIIT Manipur
 
PPTX
Security in distributed systems
Haitham Ahmed
 
PDF
Introduction to Parallel Computing
Akhila Prabhakaran
 
PPTX
Limitations of memory system performance
Syed Zaid Irshad
 
Port forwarding
Ronak Mehta
 
Firewall Design and Implementation
ajeet singh
 
Web essentials clients, servers and communication – the internet – basic inte...
smitha273566
 
Congetion Control.pptx
Naveen Dubey
 
QOS (Quality of Services) - Computer Networks
IIIT Manipur
 
Security in distributed systems
Haitham Ahmed
 
Introduction to Parallel Computing
Akhila Prabhakaran
 
Limitations of memory system performance
Syed Zaid Irshad
 

What's hot (20)

PDF
Raspberry Pi
Selvaraj Seerangan
 
PPTX
Dhcp
Chinmoy Jena
 
PPTX
Storage Virtualization
Mehul Jariwala
 
PPTX
6LoWPAN.pptx
RaghuramCheepurupall
 
PPTX
CCS335 – CLOUD COMPUTING.pptx
NiviV4
 
PPTX
Domain name system (dns)
Atikur Rahman
 
PPTX
Multi processor scheduling
Shashank Kapoor
 
PPTX
Leaky bucket A
Syed Shaheer Gilani
 
PPTX
Distributed computing
shivli0769
 
PPSX
Physical layer ppt
Najam Khattak
 
PPTX
TCP & UDP ( Transmission Control Protocol and User Datagram Protocol)
Kruti Niranjan
 
PPTX
Unicast multicast & broadcast
NetProtocol Xpert
 
PPTX
Transmission Control Protocol (TCP)
k33a
 
PPT
Proxy Servers
Sourav Roy
 
PPTX
Computer Network - Network Layer
Manoj Kumar
 
PPTX
Tcp IP Model
Ankur Kumar
 
PPTX
Ppt 3 - IOT logic design
udhayakumarc1
 
PPTX
Quality of Service
Abhishek Wadhwa
 
PPTX
Task programming
Yogendra Tamang
 
PPTX
Synchronization in distributed computing
SVijaylakshmi
 
Raspberry Pi
Selvaraj Seerangan
 
Dhcp
Chinmoy Jena
 
Storage Virtualization
Mehul Jariwala
 
6LoWPAN.pptx
RaghuramCheepurupall
 
CCS335 – CLOUD COMPUTING.pptx
NiviV4
 
Domain name system (dns)
Atikur Rahman
 
Multi processor scheduling
Shashank Kapoor
 
Leaky bucket A
Syed Shaheer Gilani
 
Distributed computing
shivli0769
 
Physical layer ppt
Najam Khattak
 
TCP & UDP ( Transmission Control Protocol and User Datagram Protocol)
Kruti Niranjan
 
Unicast multicast & broadcast
NetProtocol Xpert
 
Transmission Control Protocol (TCP)
k33a
 
Proxy Servers
Sourav Roy
 
Computer Network - Network Layer
Manoj Kumar
 
Tcp IP Model
Ankur Kumar
 
Ppt 3 - IOT logic design
udhayakumarc1
 
Quality of Service
Abhishek Wadhwa
 
Task programming
Yogendra Tamang
 
Synchronization in distributed computing
SVijaylakshmi
 
Ad

Similar to Port forward (20)

PPTX
Nat
lyndyv
 
PDF
Network Programming Assignment Help
HelpWithAssignment.com
 
PDF
NAT on pfSense 2.3 - pfSense Hangout May 2016
Netgate
 
PPTX
Network address translation
Karppinen Ngoc Anh
 
PPT
Unit05
Nurul Nadirah
 
PPTX
Border Gatway Protocol
Shashank Asthana
 
PDF
+ Network Programming.pdf
OluwafolakeOjo
 
PPTX
Address Resolution Protocol Cache Poisoning
pifiye9333
 
PPT
Ports & sockets
myrajendra
 
PPTX
Lecture 4-Internetworking-Concepts (view-only).pptx
ShaimasafaaldinBahaa1
 
PDF
NAT and firewall presentation - how setup a nice firewall
Cassiano Campes
 
PPTX
IP Routing.pptx
Jayaprasanna4
 
PPTX
Firewall
lyndyv
 
PPT
network-security_for cybersecurity_experts
abacusgtuc
 
PPTX
IP Layer.pptx
DhananjayKumbhar15
 
PPTX
port forwarding.pptx
Vignesh kumar
 
PDF
Networking.pdf
DarshaniKarunarathne
 
PPTX
NP - Unit 4 - Routing - RIP, OSPF and Internet Multicasting
hamsa nandhini
 
PDF
Transport layer services
Melvin Cabatuan
 
PPT
TCPIP in brief and working operation.ppt
Mugabo4
 
Nat
lyndyv
 
Network Programming Assignment Help
HelpWithAssignment.com
 
NAT on pfSense 2.3 - pfSense Hangout May 2016
Netgate
 
Network address translation
Karppinen Ngoc Anh
 
Unit05
Nurul Nadirah
 
Border Gatway Protocol
Shashank Asthana
 
+ Network Programming.pdf
OluwafolakeOjo
 
Address Resolution Protocol Cache Poisoning
pifiye9333
 
Ports & sockets
myrajendra
 
Lecture 4-Internetworking-Concepts (view-only).pptx
ShaimasafaaldinBahaa1
 
NAT and firewall presentation - how setup a nice firewall
Cassiano Campes
 
IP Routing.pptx
Jayaprasanna4
 
Firewall
lyndyv
 
network-security_for cybersecurity_experts
abacusgtuc
 
IP Layer.pptx
DhananjayKumbhar15
 
port forwarding.pptx
Vignesh kumar
 
Networking.pdf
DarshaniKarunarathne
 
NP - Unit 4 - Routing - RIP, OSPF and Internet Multicasting
hamsa nandhini
 
Transport layer services
Melvin Cabatuan
 
TCPIP in brief and working operation.ppt
Mugabo4
 
Ad

More from lyndyv (15)

PPTX
Datarate
lyndyv
 
PPTX
Logging
lyndyv
 
PPTX
Policy
lyndyv
 
PPTX
Capacity
lyndyv
 
PPTX
Security standard
lyndyv
 
PPTX
Auth and association
lyndyv
 
PPTX
Dhcp
lyndyv
 
PPTX
Mac addressfilters
lyndyv
 
PPTX
Csmaca
lyndyv
 
PPTX
Basic config
lyndyv
 
PPTX
Service set
lyndyv
 
PPTX
Signals1
lyndyv
 
PPTX
Modulation
lyndyv
 
PPTX
IEEE WLAN standards
lyndyv
 
PPTX
Wireless components
lyndyv
 
Datarate
lyndyv
 
Logging
lyndyv
 
Policy
lyndyv
 
Capacity
lyndyv
 
Security standard
lyndyv
 
Auth and association
lyndyv
 
Dhcp
lyndyv
 
Mac addressfilters
lyndyv
 
Csmaca
lyndyv
 
Basic config
lyndyv
 
Service set
lyndyv
 
Signals1
lyndyv
 
Modulation
lyndyv
 
IEEE WLAN standards
lyndyv
 
Wireless components
lyndyv
 

Port forward

  • 1. Port forwarding allows remote hosts from the Internet or outside network to connect to a server on the local network (inside network) ◦ The default firewall behaviour is to drop any connections starting from the outside  Remote hosts typically use protocols such as http, https, ftp, ssh
  • 2. A remote host sends a request to the public global IP address of the inside server and the port number of the service required (usually the registered port no of the destination service e.g. port 80 for http) ◦ If the router is using PAT this is the outside interface address  The wireless router uses PAT ◦ If the router is using static NAT this is mapped one-to-one address  The request is routed to the outside interface of the router  The router checks for a port forwarding rule that matches the protocol and the destination port of the request ◦ If a match to a rule exists the request is forwarded to the local IP address and the port number configured in the port forward rule  Only one inside server can use the global IP/port number mapping  E.g If there are 2 inside http servers one can use port 80 and one can use port 90 ◦ If a match to a rule does not exist the request is dropped
  • 3. The remote host on the outside network must use the public global IP address to create the connection  The port number used in the port forward rule is reserved for only 1 inside IP address ◦ A port number can’t be used to forward requests to a second server. To do this, select a different unused port no and create a second port forwarding rule  Some applications; multimedia and torrents required several ports open for connections. ◦ Typically 1 or 2 ports are required for the control channels that setup and close the connection and monitor the connection. ◦ Extra ports may be required for the data stream, another for video, another for voice and another for chat ◦ Research the port nos required ◦ Use a port range in the forwarding rule
  • 4. A port trigger is used to open a port temporarily for a particular inside host only ◦ The port trigger allows new connections from the outside network to an inside host that initiated the data flow ◦ E.g. Port 25 is defined as a trigger and 113 as the port ◦ A local host checks mail and triggers port 25. The port trigger allows a back connection on port 113 (Identity information for mail) to the originating host ◦ The trigger times out and new connections to 113 are dropped  The wireless router monitors outgoing traffic for the port numbers specified in the trigger ◦ When a match is made the IP address of the sending host (local address) is saved. ◦ When the return traffic arrives back at the router it is forwarded to the original sending host.  Port triggers might be used in online gaming